Security Policy

Your data security is our top priority

Encryption

All data is encrypted both in transit and at rest:

  • TLS 1.3: All connections use TLS 1.3 encryption
  • AES-256: Data at rest encrypted with AES-256
  • End-to-End: End-to-end encryption for sensitive operations

Infrastructure Security

  • Vercel Edge Network: Hosted on Vercel's global edge network with DDoS protection
  • Supabase: Database hosted on Supabase with enterprise-grade security
  • AWS S3: Media storage on AWS S3 with encryption and access controls
  • CDN Protection: CDN protection and web application firewall

Compliance

  • GDPR: GDPR compliant (European data protection)
  • PDPA: PDPA compliant (Singapore data protection)
  • SOC 2: SOC 2 Type II certified infrastructure

Access Control

  • Multi-factor authentication (MFA) support
  • Role-based access control (RBAC)
  • Comprehensive audit logging
  • Real-time security monitoring and alerts

Security Incident Response

If you discover a security vulnerability, please report it immediately to our security team. We have a responsible disclosure policy and will work with you to resolve issues quickly.

Email: security@iterabiz.com

Response Time: Within 24 hours

iTeraBiz - AI-Powered Marketing Content Platform